Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/gp7sAgTAj1DlB9hQ_3JfFOJLpT4.roa
File: gp7sAgTAj1DlB9hQ_3JfFOJLpT4.roa (raw, json)
Hash identifier: h/YEqYfDq8E3i/26sCqyrCTKJg94JO1aVimMNaY3WwA=
Subject key identifier: 82:9E:EC:02:04:C0:8F:50:E5:07:D8:50:FF:72:5F:14:E2:4B:A5:3E
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01881EF5DD56EEC9D4D922D97CF4604A73D4
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/gp7sAgTAj1DlB9hQ_3JfFOJLpT4.roa
Signing time: Mon 15 May 2023 10:30:09 +0000
ROA not before: Mon 15 May 2023 10:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 46.232.64.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.70.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
46.232.72.0/21 maxlen: 24
46.232.96.0/20 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.88.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.246.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.252.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.192.0/18 maxlen: 22
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.185.0/24 maxlen: 24
46.3.184.0/24 maxlen: 24
46.3.186.0/24 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.187.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.189.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.232.112.0/20 maxlen: 22
46.3.101.0/24 maxlen: 24
46.3.116.0/22 maxlen: 24
46.3.120.0/21 maxlen: 21
46.3.134.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.202.0/24 maxlen: 24
46.3.201.0/24 maxlen: 24
46.3.208.0/21 maxlen: 21
46.3.220.0/23 maxlen: 23
46.3.230.0/23 maxlen: 23
46.3.246.0/24 maxlen: 24
46.3.245.0/24 maxlen: 24
46.3.249.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:f5:dd:56:ee:c9:d4:d9:22:d9:7c:f4:60:4a:73:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 15 10:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=829eec0204c08f50e507d850ff725f14e24ba53e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:29:75:54:39:6e:6e:df:10:4e:c8:6c:da:e0:
fc:ea:03:8b:9a:3c:27:6d:97:68:4d:40:3d:67:98:
ad:76:24:3c:7b:8b:d2:b6:c5:b3:d1:e7:67:c0:53:
3e:cb:78:58:56:ae:13:4f:20:4e:65:5c:c9:62:09:
76:19:a7:bf:67:48:8f:76:94:68:93:11:f4:4b:db:
e4:d4:67:28:ae:fb:e3:26:ea:9b:a3:e4:2f:57:68:
ac:be:16:74:fb:0f:9c:f4:8d:7e:1b:94:56:ae:69:
38:11:87:75:8c:35:67:1b:ac:38:fb:0c:cc:70:ee:
07:ce:17:a7:bd:52:a0:e5:63:c1:ff:68:77:d2:cc:
03:32:0f:cb:99:59:c5:79:65:ef:0e:ad:fb:b9:c6:
15:ea:24:44:59:79:91:56:48:d0:1d:8d:de:42:7d:
50:5e:a4:38:76:b6:f1:f4:cf:aa:6b:f9:18:41:09:
8c:92:0e:4a:5c:ad:e6:c5:9a:dc:62:ce:37:c7:b9:
6a:a5:7a:6e:3a:79:91:c2:49:c2:cf:2c:17:c7:e6:
49:4f:b3:6e:9e:d8:1a:ea:a3:9b:eb:f5:b7:17:e1:
2a:77:49:11:c7:c4:cc:ac:15:fb:07:f7:0d:f7:43:
45:78:07:e2:9e:6f:e4:25:3d:fb:89:4b:0d:7a:05:
67:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:9E:EC:02:04:C0:8F:50:E5:07:D8:50:FF:72:5F:14:E2:4B:A5:3E
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/gp7sAgTAj1DlB9hQ_3JfFOJLpT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.88.0/22
46.3.101.0/24
46.3.116.0-46.3.127.255
46.3.134.0/24
46.3.160.0/22
46.3.184.0/21
46.3.200.0-46.3.202.255
46.3.208.0/21
46.3.220.0/23
46.3.230.0/23
46.3.245.0-46.3.246.255
46.3.248.0/21
46.232.64.0/20
46.232.96.0/19
149.126.192.0/18
Signature Algorithm: sha256WithRSAEncryption
31:00:b9:8f:4b:b2:3a:44:2e:74:5c:20:95:fd:c9:b2:38:3a:
75:ba:33:d2:31:f6:e5:e9:b9:56:4e:eb:64:7a:4d:25:6c:a7:
0c:f9:ea:af:c3:b5:bf:bb:44:19:61:59:c4:89:9b:9f:90:8f:
56:8a:6d:d4:c2:9a:21:71:6b:14:01:85:52:b8:9a:e5:ec:3f:
24:93:b0:f9:35:72:ea:5b:de:6e:3a:50:ce:50:18:2d:69:4b:
45:80:45:1b:1c:93:f8:21:65:15:c7:58:d8:00:3a:a6:8b:62:
a8:65:25:f5:9f:14:a3:5e:0e:f8:26:b1:44:3d:70:c1:a1:7c:
a2:96:4f:3f:5c:90:f0:66:5a:d6:1c:9d:87:fe:b0:7d:b4:86:
73:a1:7f:68:e2:ab:1a:d4:39:56:71:b7:29:fe:d1:8a:14:1e:
5f:ab:97:34:1f:7d:30:e7:71:ea:58:96:4d:10:9e:bc:a0:9c:
01:30:a7:1f:d5:83:a0:ff:d5:f0:ad:0d:0d:af:78:20:90:18:
1a:a7:6b:c1:38:89:b8:81:53:ab:79:f5:3e:f5:4f:14:1b:c3:
26:ba:a0:5a:c8:cc:4d:5f:80:89:ca:0a:bc:ec:a0:ad:9f:49:
85:ff:77:09:4f:c1:72:d5:d7:32:2a:9b:78:64:b0:c7:2f:da:
49:01:ec:71
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:29 2023 by rpki-client on console-ams.rpki-client.org